How to remove an app from Windows Defender on Windows 10

Windows Defender either blocks, or warns against running almost all types of apps. Even if you’re installing an app that was developed by Microsoft, you will still see an alert asking if you want to install the app or allow it to make changes to your system. This is of course for your own protection and while it may be a minor inconvenience it’s a necessary one. If you’ve allowed an app to run on Windows 10, it has been added to the Windows Defender whitelist. If you later need to remove an app from Windows Defender, here’s how you can do just that.

Remove app from Windows Defender

The Windows Defender app doesn’t have a dedicated panel for removing apps that have been whitelisted. Instead, you have to go through the Control Panel.

Open Control Panel and go to System and Security. Click Windows Defender Firewall. In the column on the left, click the ‘Allow an app or feature through Windows Defender Firewall’ option.

On the next screen, click the Change Settings button and scroll down the list of Allowed apps and features. Select the app that you want to remove from Windows Defender, and click the Remove button at the bottom of the list.

This app will no longer be able to make any changes to your system unless you allow it. If, for example, you remove Chrome or Firefox from the list, they will no longer be able to install updates which, normally, browsers can automatically do.

This list isn’t an exhaustive one which means that some apps installed on your system will not appear in the list. In this case, you can use the Command Prompt to remove an app from Windows Defender.

Open Command Prompt with admin rights. Run the following command but replace ‘App Name’ with the name of the app that you want to remove from Windows Defender, and ‘Path-to-app EXE’ with the path to the app’s EXE file.

Syntax

netsh advfirewall firewall add rule name="app name" dir=in action=block program="path-to-app EXE" enable=yes

Example

netsh advfirewall firewall add rule name="Chrome" dir=in action=block program="C:\Program Files (x86)\Google\Chrome\Application\Chrome.exe" enable=yes

You can always add an app back. To do so, simply run the app again and when Windows Defender prompts you to, allow the app to make changes to your system. If you want to add it back to the Windows Defender whitelist via Command Prompt, run the following command;

netsh advfirewall firewall add rule name="app name" dir=in action=allow program="path-to-app EXE" enable=yes

Replace the app name and the path to the app EXE with the name of the app you want to add and the path to its EXE file.

Read How to remove an app from Windows Defender on Windows 10 by Fatima Wahab on AddictiveTips – Tech tips to make you smarter

How to enable sandbox mode for Windows Defender on Windows 10

Windows Defender is the anti-virus that Microsoft packages with Windows 10. It does cause problems for some users but overall, if you’re not running an anti-virus, Windows Defender will keep you safe. Microsoft does make changes to it to keep up with new threats. You get regular virus definition updates delivered via Windows updates, and there’s a neat Ransomware protection feature that you can enable for extra safety. Microsoft has added a new sandbox mode for Windows Defender.

This sandbox mode hasn’t been enabled for users just yet. It’s a work in progress but, if you’re willing, you can enable it on the stable version of Windows 10. Here’s how.

Sandbox mode for Windows Defender

In order to enable sandbox mode Windows Defender, you’re going to need admin rights. You’re making a modification to Windows Defender which isn’t something you can do with normal user rights.

Open Command Prompt with admin rights. Run the following command to enable sandbox mode.

setx /M MP_FORCE_USE_SANDBOX 1

Restart your system to apply the change.

If you find that, after enabling sandbox mode, your system is running slower, there are too many false flags, or you have trouble accessing files or apps on your system, you may want to disable it.

Open Command Prompt with admin rights, and run this command to disable it.

setx /M MP_FORCE_USE_SANDBOX 0

Restart your system.

Sandboxing, particularly for an anti-virus is pretty amazing. At present there aren’t any other anti-virus apps that can run in sandbox mode. Sandboxing basically lets an app run in its own environment that’s blocked off from everything else. Other apps cannot access it unless the sandboxed app allows them in. This isn’t a big deal if an app isn’t malicious but for apps that are malicious or viruses, that means they cannot interfere with Windows Defender.

Windows Defender is a good anti-virus but there are malicious apps out there that can disable it. If it ever comes to that, the only option users have is to format your drive and reinstall Windows 10. The sandbox mode will make it harder for a malicious app to disable Windows Defender, if not near impossible.

The sandbox mode is still a work-in-progress. This means that while you can force enable it, it may not add the level of protection that it should. It’s not going to make Windows Defender less effective if you have it enabled and it isn’t working right but if you have trouble with your system after enabling it, you should disable it and wait until Microsoft gives it a clean bill of health.

Read How to enable sandbox mode for Windows Defender on Windows 10 by Fatima Wahab on AddictiveTips – Tech tips to make you smarter

How To Exclude A File From Windows Defender On Windows 10

Windows Defender runs in the background to keep your system safe from malicious apps and processes. It will routinely give you alerts to let you know it ran a scan and found nothing. It also tells you when it’s found a potential threat though sometimes, it does identify the wrong file as malicious. This tends to happen with anti-virus apps and services. VirusTotal will sometimes get a false positive and even Chrome will incorrectly block certain files. Sometimes Windows Defender will flag a safe file as malicious. In that case, you can exclude a file from Windows Defender.

A Word Of Caution

While it is entirely possible that Windows Defender is flagging the wrong file, we should caution you nevertheless on adding the file as an exception. If the file is an app EXE and it’s suddenly being flagged as malicious after being updated, it might actually have a problem. Sometimes, in rare cases, something malicious ends up becoming part of an otherwise safe app when it’s updated so you should try and scan the app with a different anti-virus.

If you’ve downloaded an app from an unreliable source, it may be worth getting a second opinion on it. Sometimes apps that are otherwise safe are bundled with malicious code and made available for download on online repositories. Make sure you get the file from a reliable source.

Exclude A File From Windows Defender

You can exclude a file, folder, process, or a certain type of file from Windows Defender. You will need administrative rights to add an exception to Windows Defender.

Open Windows Defender and click the ‘Settings’ button on the left column at the bottom.

On the Settings screen, scroll down to the Virus & threat protection notifications section, click the Virus & threat protection settings option.

Scroll down to the Exclusions section and click ‘Add or remove exclusions’.

On the Exclusions screen, click the ‘Add an exclusion’ button and select what you want to exclude from being scanned by Windows Defender.

It’s at this point you will need to authenticate with the admin username and password to allow the exclusion to be added. This is also where you can remove any exclusions that you’ve added and that too will require administrative rights.

Normally, these permissions are never reset but if you happen to update an app file that you added to the excluded files list, you might want to check and make sure that it hasn’t been removed. You should also know that this is specific to files. If you exclude a file, delete it later, and download a copy of it, it will not automatically be excluded from Windows Defender.

If Windows Defender is giving you momentary problems e.g., it won’t let you install a file, you should try disabling it for a while instead of adding a file exception.

Read How To Exclude A File From Windows Defender On Windows 10 by Fatima Wahab on AddictiveTips – Tech tips to make you smarter

How To Add Windows Defender Protection To Chrome

Windows 10 has a built-in anti-virus that periodically scans your system for malicious apps, scripts, files, and processes. When you’re not using your system, Windows Defender utilizes the time to scan it. It also actively scans the websites you visit in Microsoft Edge, and the files you download via the browser. That said, we’d be kidding if we pretended that Microsoft Edge has massive appeal. It’s doing better than Internet Explorer but it’s not the same as Chrome. That may be why Microsoft has an extension that can add Windows Defender protection to Chrome.

It’s a simple Chrome extension that you can install to extend Windows Defender’s protection to Chrome.

Windows Defender Protection In Chrome

Install the Windows Defender Browser Protection extension. It will add an icon next to the URL bar which you don’t need. You can hide it if you want. The icon opens a menu and that has an On/Off switch for when you want to enable or disable it on the fly.

Windows Defender is fairly robust so your browsing isn’t going to slow down after installing the extension. Chrome itself has a built-in antivirus that will flag potentially dangerous files that you’re trying to download, or dangerous links that you might be trying to visit. If you find that Chrome isn’t as diligent as it ought to be, you can add the protection of Windows Defender to Chrome. There’s no way to turn off Chrome’s own built-in protection so if you choose to use this extension, you will have two different services keeping you safe online.

Microsoft doesn’t have a Firefox add-on for Windows Defender which is odd. Firefox may not have the same number of users that Chrome does but it still has more users than Edge. Microsoft claims that it offers better protection than both Chrome and Firefox but it has neglected to offer the same protection to Firefox users.

It goes without saying that the extension will have access to your browsing history. It may be a cause for concern if you’re still suspicious of Microsoft for its data gathering antics a few years ago but the data isn’t being stored. The extension needs you history so that it can check the links you visit against a list of dangerous links that it has in its database. If it finds you’re visiting one of the potentially malicious links, it will stop you. It happens in real time so while the extension knows which websites you’re visiting, it isn’t going to keep it forever.

Read How To Add Windows Defender Protection To Chrome by Fatima Wahab on AddictiveTips – Tech tips to make you smarter